Key skills
CloudSaaSStakeholder ManagementRisk ManagementCommunicationCustomer SuccessSalesCloud Security
About this role
Role Overview
- Drive Execution of Compliance Programs: Act as a key operator for the company’s security compliance initiatives.
- Lead the operational execution of compliance programs supporting certifications such as SOC 2, ISO 27001, PCI, HIPAA, and regional regulatory frameworks
- Coordinate activities required to achieve and maintain security certifications
- Ensure compliance milestones and program deliverables are executed on schedule
- Partner with the Compliance Manager to scale compliance initiatives across business units
- Lead Audit Readiness and Execution: Serve as a primary coordinator for internal and external audits.
- Plan and coordinate audit preparation activities with internal teams
- Manage audit evidence collection and validation
- Serve as a key liaison between control owners and external auditors
- Track remediation plans and ensure timely closure of control deficiencies
- Enable Control Owners and Cross-Functional Teams: Help operational teams implement security and compliance requirements effectively.
- Educate process and control owners on their responsibilities within the security control framework
- Provide guidance on implementing controls efficiently in engineering and operational environments
- Facilitate alignment between security requirements and operational processes
- Customer Assurance and Security Assessments: Support trust initiatives with customers and partners.
- Respond to customer security questionnaires and due diligence requests
- Support the Sales and Customer Success teams in articulating OutSystems’ security and compliance posture
- Provide documentation and context related to security certifications and control frameworks
- Compliance Monitoring and Reporting: Maintain visibility into the organization’s compliance posture.
- Monitor compliance with security policies and established control frameworks
- Track control implementation and evidence status within the GRC platform
- Identify trends, risks, and improvement opportunities within compliance programs
- Continuous Improvement of Compliance Operations: Contribute to improving the scalability and effectiveness of compliance programs.
- Identify opportunities to streamline evidence collection, audit preparation, and control monitoring
- Improve documentation, processes, and automation within compliance workflows
- Support the evolution of the company’s control framework and GRC platform usage
Requirements
- Bachelor’s degree in Computer Science, Information Security, or related field
- 4–7 years of experience in security compliance, audit, or risk management
- Experience supporting security certification programs such as SOC 2 or ISO 27001
- Familiarity with cloud security and SaaS operating environments
- Strong program coordination and stakeholder management skills
- Excellent written and verbal communication skills
- Experience using GRC tools and compliance management platforms
Tech Stack
- Cloud
Benefits
- Health insurance
- Flexible work arrangements
- Professional development opportunities
- Real growth opportunities